|
.: web app sec testing sites
Saw this on the SecurityFocus pen-testers mailing list and thought I would capture them here for future reference. These are some sites/tools to help evaluate web app security scanner tools.
SPI Dynamics zero.webappsecurity.com
Cenzic crackme.cenzic.com
Foundstone SASS tools
OWASP WebGoat
OWASP SiteGenerator
Watchfire demo site
Acunetix php test site
Typically, lots of the online "hack me" or "hacker challenge" sites like some in my right menu list tend to touch on web-borne "hacks" for their challenges as opposed to anything else. May get some mileage from them as well. Most also can be Googled for solutions should you get stuck and want to just learn quickly.
by LonerVamp 05.10.07 at 1:27 PM in /general
.: dre writes:
Can I add these to some of the OWASP pages that I manage? It's a great list.
by dre 05.11.07 at 6:16 PM
.: dre writes:
Add Acunetix's to your list:
http://testphp.acunetix.com/
by dre 05.13.07 at 4:20 PM
.: LonerVamp writes:
Yeah, totally go ahead and use the list. It's definitely not my property really! :)
by LonerVamp 05.14.07 at 8:43 AM
.: dre writes:
others were added, see under "Test Sites" (right at the top):
http://owasp.org/index.php/Phoenix/Tools
by dre 05.16.07 at 6:06 PM
.: LonerVamp writes:
Wow, that list is excellent!
by LonerVamp 05.17.07 at 8:39 AM
|
